ICICI Bank has reportedly fallen victim to a cyberattack by the notorious BASHE ransomware group. The data allegedly compromised sensitive customer data and the cybercriminals are demanding a ransom in exchange for not leaking the stolen information. While ICICI Bank has not yet officially acknowledged the breach, cybersecurity experts and users are raising concerns about the potential implications of the attack.
The BASHE group, also known by the aliases APT73 or Eraleig, has earned a reputation for targeting high-value organizations across multiple industries, including banking, healthcare, and technology. Since April 2024, BASHE has been responsible for several high-profile cyberattacks. This group targets critical infrastructure and then asks for ransom.
BASHE has set a strict deadline of January 24, 2025, for ICICI Bank to meet its ransom demands. If the bank fails to comply within the specified time, the ransomware group has threatened to publicly expose the stolen data. BASHE has also posted a countdown timer on their TOR-based Data Leak Site (DLS). It provides a constant reminder of the time ticking away for ICICI Bank.
Despite several reports and discussions on social media platforms, ICICI Bank has yet to officially acknowledge the data breach. This silence has already fueled speculation and raised concerns about the potential extent of the attack. ICICI Bank serves millions of customers across India and has an international presence. If the breach is authentic, it could lead to massive reputational damage and regulatory consequences for the bank.
ICICI Bank needs to address the breach urgently. It should at least confirm if the claims of breach or true or false. In case the company actually became the victim of a cyber attack, it should notify its customers about the breach and inform law enforcement agencies such as the Indian Computer Emergency Response Team (CERT-In).
This incident serves as a wake-up call to all financial institutions about the increasing sophistication of cybercriminals. All financial institutions should invest more in securing their network and infrastructure to avoid security issues.
